• Home
• com.contentgrid.spring
• contentgrid-spring-boot-autoconfigure
• 0.16.0
• source code
• MultiTenantOAuth2ResourceServerAutoConfiguration.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.contentgrid.spring.boot.autoconfigure.security.MultiTenantOAuth2ResourceServerAutoConfiguration Maven / Gradle / Ivy

package com.contentgrid.spring.boot.autoconfigure.security;

import org.springframework.boot.autoconfigure.AutoConfiguration;
import org.springframework.boot.autoconfigure.condition.ConditionalOnBean;
import org.springframework.boot.autoconfigure.condition.ConditionalOnClass;
import org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean;
import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
import org.springframework.boot.autoconfigure.condition.ConditionalOnWebApplication;
import org.springframework.boot.autoconfigure.condition.ConditionalOnWebApplication.Type;
import org.springframework.boot.autoconfigure.security.ConditionalOnDefaultWebSecurity;
import org.springframework.boot.autoconfigure.security.oauth2.resource.servlet.OAuth2ResourceServerAutoConfiguration;
import org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration;
import org.springframework.boot.context.properties.EnableConfigurationProperties;
import org.springframework.context.annotation.Bean;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.oauth2.server.resource.authentication.JwtIssuerAuthenticationManagerResolver;
import org.springframework.security.web.SecurityFilterChain;

@AutoConfiguration(before = { OAuth2ResourceServerAutoConfiguration.class, SecurityAutoConfiguration.class })
@EnableConfigurationProperties(MultiTenantOAuth2Properties.class)
@ConditionalOnClass(value = {JwtIssuerAuthenticationManagerResolver.class, SecurityFilterChain.class, HttpSecurity.class})
@ConditionalOnWebApplication(type = Type.SERVLET)
class MultiTenantOAuth2ResourceServerAutoConfiguration {

    @Bean
    @ConditionalOnMissingBean
    @ConditionalOnProperty("contentgrid.security.oauth2.trusted-jwt-issuers[0]")
    JwtIssuerAuthenticationManagerResolver authenticationManagerResolver(MultiTenantOAuth2Properties oauth2Properties) {
        return JwtIssuerAuthenticationManagerResolver.fromTrustedIssuers(oauth2Properties.getTrustedJwtIssuers());
    }

    @Bean
    @ConditionalOnDefaultWebSecurity
    @ConditionalOnBean(JwtIssuerAuthenticationManagerResolver.class)
    SecurityFilterChain jwtIssuerSecurityFilterChain(HttpSecurity http,
            JwtIssuerAuthenticationManagerResolver authManagerResolver) throws Exception {
        http.authorizeHttpRequests((requests) -> requests.anyRequest().authenticated());

        // contentgrid multi-jwt issuer-uris
        http.oauth2ResourceServer(oauth2 -> oauth2.authenticationManagerResolver(authManagerResolver));

        return http.build();
    }
}